GDPR Compliance Policy

Effective Date: December 06, 2025

This GDPR (General Data Protection Regulation) Compliance Policy explains how dailydishcenter (https://dailydishcenter.com) collects, uses, stores, and protects personal data of individuals located in the European Economic Area (EEA). We are committed to safeguarding your privacy and upholding your statutory rights under GDPR.

Data We Collect

We collect only the data that is necessary to provide, improve, and personalize our services. The categories of personal data we process include:

• Email Addresses: Provided voluntarily when you subscribe to newsletters, request information, or create an account.
• Cookies & Similar Technologies: Small text files stored on your device to remember preferences, manage sessions, and analyse site usage.
• Analytics Data: Aggregated information such as IP address, browser type, device type, and pages visited, collected through Google Analytics and other analytics services.

How We Protect Your Data

We employ a layered security approach to ensure that personal data is protected against unauthorised access, alteration, disclosure, or destruction:

• SSL/TLS Encryption: All data transmitted between your browser and our servers is encrypted using HTTPS.
• Secure Servers: Our hosting environment is hardened, regularly patched, and monitored 24/7.
• Limited Retention: Personal data is retained only for as long as it is necessary to fulfil the purposes for which it was collected, in accordance with our data retention schedule.
• Access Controls: Only authorised personnel with a legitimate business need can access personal data, and they are required to sign confidentiality agreements.
• Regular Audits: We conduct periodic security assessments and vulnerability scans.

Legal Basis for Processing

Under GDPR, we must have a lawful basis to process personal data. The bases we rely on are:

• Consent: When you voluntarily opt‑in to receive newsletters or marketing communications.
• Legitimate Interests: To improve website functionality, analyse usage trends, and protect the security of our services.

Where we rely on consent, you may withdraw it at any time without affecting the lawfulness of processing based on consent before its withdrawal.

Your GDPR Rights

As an EEA resident, you enjoy the following rights. Each right is accompanied by a Bootstrap icon for quick visual reference.

• Right to Access – You may request confirmation that we are processing your personal data and obtain a copy of that data in a structured, commonly used format.
• Right to Rectification – If any of your personal data is inaccurate or incomplete, you may ask us to correct or complete it without undue delay.
• Right to Erasure (Right to be Forgotten) – You may request the deletion of your personal data when it is no longer necessary for the purposes for which it was collected, or when you withdraw consent.
• Right to Restrict Processing – You may ask us to limit the way we use your data while we verify the accuracy of the information or while a dispute is being resolved.
• Right to Data Portability – You can receive your personal data in a machine‑readable format and transmit it to another controller where technically feasible.
• Right to Object – You may object to the processing of your data for direct marketing, scientific/historical research, or any other legitimate interest we rely upon.
• Right to Withdraw Consent – Where processing is based on consent, you may withdraw that consent at any time, and it will not affect the lawfulness of processing before the withdrawal.

How to Exercise Your Rights

To exercise any of the rights listed above, please follow these steps:

1. Send a written request to our Data Protection Officer at gdpr@dailydishcenter.com. Include your full name, contact details, and a clear description of the right you wish to invoke.
2. Provide proof of identity (e.g., a copy of a government‑issued ID) to verify that the request is legitimate. This step helps protect your data from unauthorised access.
3. We will acknowledge receipt of your request within 5 business days and will aim to fulfil it within 30 calendar days, in line with GDPR Article 12‑15.
4. If we need additional time (e.g., for complex requests), we will inform you of the extension and the reasons within the original 30‑day period.
5. If you are dissatisfied with our response, you have the right to lodge a complaint with a supervisory authority, such as the Data Protection Authority in your EU member state.

Response Time

All GDPR‑related requests are processed within 30 days of receipt. In exceptional circumstances where the request is particularly complex or numerous, we may extend the deadline by up to an additional two months, but you will be notified of the extension and the reasons for it within the original 30‑day period.

Updates to This Policy

We review this policy regularly and may update it to reflect changes in our practices or legal requirements. Any material changes will be posted on this page with an updated “Last Updated” date. Continued use of the site after such updates constitutes acceptance of the revised policy.

Contact Information

If you have any questions about this GDPR Compliance Policy, need clarification on any of your rights, or wish to submit a request, please contact our Data Protection Officer:

© dailydishcenter – All rights reserved.